Search results

infringing Article 58(2) GDPR due to an alleged infraction of the right of access by a data subject. The defendant agreed to an early and guilty voluntary payment

not responding to an access request. The data subject also approached LEXER, the credit recovery company for ABANCA, requesting for an immediate cessation

The Danish DPA (Datatilsynet) held that an electronic ticketing system for public transport violated the principles of lawfulness, fairness, and transparency

be properly documented. A data subject made an access request to an educational institution, asking for course programs, statistical data of the grades and

Administration Act states: "When it is stipulated by law that an administrative sanction may be imposed on an enterprise, the sanction can be imposed even if no individual

reprimanded Barclays for an excessive retention of the complainants’ personal data in a credit information system (CIS) recognising that it was an isolated and bona

personal data consists of obtaining:  An increase in the contracting of its services;  Greater customer acquisition;  An increase in visibility in the competitive

Disputes Chamber concludes that this case does not concern an assessment of a data processing by an authority in accordance with article 10/1, §1 of the decree

reprimanded Tarlun Limited for violating Article 12(3) GDPR by failing to respond to an access request within one month due to a misperception. The decision recognised

proposed that the restricted committee of the Commission impose an administrative fine and an injunction to bring the processing into compliance with the provisions

indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more specific

to all cookies. Is publishing illegal recordings of a witness on a website an infringement of Article 6(1)(a) GDPR? Is placing cookies without consent when

plaintiff's assets, so that the plaintiff has an even greater interest in the deletion of the negative entries compared to an insolvency debtor who has completed

indirectly, in particular by means of an identifier, such as a name, an identification number, location data, an online identifier or one or more elements

including by e-mail and via a file transfer link. Also, they were given (an unencrypted) USB stick which they dropped into the controller's letterbox

jurisdiction in 2019. Based on this notification, the Swedish DPA initiated an investigation into the medical data which the Uppsala Regional Council emailed

the supervisory authorities in Article 57 (1) of the GDPR.Thus, on 31/10/18, an information injunction was sent to the entity in question. THIRD:By letter

documents public. It is illegal to do an act prohibited by the legislature solely on the basis of the fact that ever such an act was permissible. The Data State

indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier or one or more factors

Commission also stated that it would carry out a proportionality assessment and an additional DPIA under Article 35 GDPR, in order to guarantee the adherence